- This topic has 2 voices and 3 replies.
-
Posts
-
Someone put stupid phishing sites on two of my domains (not WCF). The thing is, I can't find them when I look at the files and folders through the back end. This is annoying.
As first, my web host denied that the problem was on their end. But after insisting, they found the offending script and removed it. This doesn't give me much confidence in the security of my web host.
Are you absolutely sure the hackers didn't inject some code through any php interface your sites might have? Like an upload box or text area for submissions? It is possible.
Well, I'm not a computer whiz and so no, I can't be absolutely sure about much of anything computer related. But what I can tell you is that my web host fixed something on their end, not on my end. There weren't any files under my domain that were causing it. The fact that it hit more than one of my sites also tells me that it was done back end (I'm guessing it probably affected other computers hosted on that same server as well). On my GA site, I have html files (i.e. no php), so if they did inject it somehow via a php interface, how would it have infected that site?
Well, I'm not a computer whiz and so no, I can't be absolutely sure about much of anything computer related. But what I can tell you is that my web host fixed something on their end, not on my end. There weren't any files under my domain that were causing it. The fact that it hit more than one of my sites also tells me that it was done back end (I'm guessing it probably affected other computers hosted on that same server as well). On my GA site, I have html files (i.e. no php), so if they did inject it somehow via a php interface, how would it have infected that site?
It wouldn't.However, javascript can be injected into html like php can so it is still possible though unlikely.
